Senior Technical Privacy Architect (Center of Excellence)

Expedia Group

Location: Austin, Texas, Chicago, Illinois, Seattle, Washington

Job Type: Full time


If you need assistance during the recruiting process due to a disability, please reach out to our Recruiting Accommodations Team through the Accommodation Request form. This form is used only by individuals with disabilities who require assistance or adjustments in applying and interviewing for a job. This form is not for inquiring about a position or the status of an application.

Senior Technical Privacy Architect (Center of Excellence)

At Expedia Group, Enterprise Platforms & Infrastructure Architecture plays an integral role in defining and assessing our company's strategy, architecture, and practices. Our team works to effectively translate business objectives into processes enabled by technologies and services. We establish Standards and patterns which are incorporated into our commerce platforms and enterprise technology to ensure everything Expedia Group does is world-class. We assist our business partners with understanding their respective domains and why it is so important for everyone to be involved.

As a Senior Technical Architect, you will be a key strategic partner in defining how Expedia Group approaches new or emerging opportunities, and you will work to influence, revolutionize and simplify key aspects of our business. You will be responsible for helping develop technical solutions and strategies behind Expedia Group’s enterprise privacy efforts. You will be part of a team that is integral to protecting the privacy of our customers and employees across data and platforms. In this role, you will be involved in supporting some of our most important information security, data privacy, risk management, and compliance activities. You will participate and partner for value in a cross-functional team to add efficiency and automation to existing privacy processes while improving existing and creating new approaches to solving privacy-at-scale.

As a team - We look to each other for mentorship and push one another to simplify. We trust one another and we choose fearlessly. We are inclusive and through that, we go get what’s next. Above all else – we have fun!

What you’ll do:

  • Track developments and changes in core enterprise domains ensuring that new developments are adequately addressed in business strategy

  • Conduct technical reviews of design documents with a focus on privacy

  • Develop and maintain architecture artifacts

  • Guide teams through the SDLC process to ensure proper data collection and usage practices and ensure they are aligned with Expedia Group's policies, standards, and patterns

  • Conduct or facilitate design sessions to ensure an appropriate, holistic approach to solving complex problems

  • Support and advise EG technologists and business partners via communities of practice or related forums

  • Architect approaches and solutions that are tied to business outcomes and our bottom line

  • Enable optimum organizational efficiency by taking a whole systems approach and thinking across boundaries to identify which policies/processes should be standardized and which should differ

  • Champion prioritized initiatives across Enterprise Architecture, Engineering & Development, Product, Program, Legal, and GRC and work with others across EG to investigate those initiatives

  • Maintain standards and policies, execute ongoing operational responsibilities, and educate our employees on Information Security and Data Privacy objectives

Who you are:

  • Bachelor's or Master's degree in a related technical field; or equivalent related professional experience

  • 8+ years of industry experience in areas like risk assessment, threat modeling, data anonymization, data classification, and deletion architecture

  • Makes choices across teams to apply several technologies or languages

  • Demonstrates expert skills for multiple domains and builds systems that interact across a business unit

  • Understands that technology or automation doesn't solve every problem

  • Experienced in using architecture methodologies such as SABSA, Zachman and/or TOGAF

  • Direct, hands-on experience or solid understanding of core infrastructure and capabilities that support enterprise operations

  • Verifiable experience reviewing designs to ensure an appropriate solution to key objectives

  • Understanding and demonstrated delivery of capabilities related to employee communication, collaboration, accessibility, or other general solutions empowering corporate employees to perform their jobs

  • Comprehension of regulations, standards and frameworks such as PCI-DSS, SOX, GDPR, ISO 27001/2, NIST CSF and SOC 2

  • Preferably, one or more (or working toward one or more) of the following: CIPP, CIPT, CIPM CISSP, CRISC, CISA

  • Technical skills and expertise to manage information systems and manage compliance tools and processes that enable privacy compliance and incident tracking and reporting (e.g., MetricStream, RSA Archer, OneTrust GRC, etc.)

  • Experience developing and/or implementing systems and processes for:

    • DPIA, PIA, TIA, ROPA, DSAR, Data Maps

    • Third party risk management

    • Due diligence

    • Training

    • Risk assessments

The total cash range for this position in Chicago is $148,500 to $208,000. Employees in this role have the potential to increase their pay up to $237,500, which is the top of the range, based on ongoing, demonstrated, and sustained performance in the role.

The total cash range for this position in Austin is $161,500 to $226,000. Employees in this role have the potential to increase their pay up to $258,500, which is the top of the range, based on ongoing, demonstrated, and sustained performance in the role.

The total cash range for this position in Seattle is $161,500.00 to $226,000.00. Employees in this role have the potential to increase their pay up to $258,500.00, which is the top of the range, based on ongoing, demonstrated, and sustained performance in the role.

Starting pay for this role will vary based on multiple factors, including location, available budget, and an individual’s knowledge, skills, and experience. Pay ranges may be modified in the future.

Expedia Group is proud to offer a wide range of benefits to support employees and their families, including medical/dental/vision, paid time off, and an Employee Assistance Program. To fuel each employee’s passion for travel, we offer a wellness & travel reimbursement, travel discounts, and an International Airlines Travel Agent (IATAN) membership.View our full list of benefits.

About Expedia Group

Expedia Group (NASDAQ: EXPE) powers travel for everyone, everywhere through our global platform. Driven by the core belief that travel is a force for good, we help people experience the world in new ways and build lasting connections. We provide industry-leading technology solutions to fuel partner growth and success, while facilitating memorable experiences for travelers. Expedia Group's family of brands includes: Brand Expedia®,®, Expedia® Partner Solutions, Vrbo®, trivago®, Orbitz®, Travelocity®, Hotwire®, Wotif®, ebookers®, CheapTickets®, Expedia Group™ Media Solutions, Expedia Local Expert®,™, and Expedia Cruises™.

© 2021 Expedia, Inc. All rights reserved. Trademarks and logos are the property of their respective owners. CST: 2029030-50

Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident who the recipient is. Expedia Group does not extend job offers via email or any other messaging tools to individuals to whom we have not made prior contact. Our email domain is The official website to find and apply for job openings at Expedia Group is

Expedia is committed to creating an inclusive work environment with a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. This employer participates in E-Verify. The employer will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS) with information from each new employee's I-9 to confirm work authorization.
You’ve got this!